6eaecaef38da2386d64f8a9f5c7a84795bb0681b895307bec3996d2345f7b4c6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0375b0df33088538f56ffec11c13abd2_JaffaCakes118
Size

296KB
Sample

240728-ana4qszdrd
MD5

0375b0df33088538f56ffec11c13abd2
SHA1

b3f39510a57b3931eab3073b2ea5af3cb2533b29
SHA256

6eaecaef38da2386d64f8a9f5c7a84795bb0681b895307bec3996d2345f7b4c6
SHA512

5b0a83b97086553f19f9151504762d338f2c98ec9c018c1cba11c1967ee30e0031243e2e439f56c3886ee6a6fc7c1c713836dbaa1d32efc747f55d7f54fbe160
SSDEEP

6144:wSh2C/MvQsNB+vZtw3v4lX4lD9yBqqlpBzA/cbzWhe:gIqIZtwwsDof+e

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0375b0df33088538f56ffec11c13abd2_JaffaCakes118
- Size
  
  296KB
- MD5
  
  0375b0df33088538f56ffec11c13abd2
- SHA1
  
  b3f39510a57b3931eab3073b2ea5af3cb2533b29
- SHA256
  
  6eaecaef38da2386d64f8a9f5c7a84795bb0681b895307bec3996d2345f7b4c6
- SHA512
  
  5b0a83b97086553f19f9151504762d338f2c98ec9c018c1cba11c1967ee30e0031243e2e439f56c3886ee6a6fc7c1c713836dbaa1d32efc747f55d7f54fbe160
- SSDEEP
  
  6144:wSh2C/MvQsNB+vZtw3v4lX4lD9yBqqlpBzA/cbzWhe:gIqIZtwwsDof+e
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2